Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/3-b_ziwdLcS8aItfcebWRkegPu8.roa
File: 3-b_ziwdLcS8aItfcebWRkegPu8.roa (raw, json)
Hash identifier: aH4NEk+JHolxtTMR/kgRqR9VcIGtOUjI2zyZPxQ+Vbs=
Subject key identifier: DF:E6:FF:CE:2C:1D:2D:C4:BC:68:8B:5F:71:E6:D6:46:47:A0:3E:EF
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 018DC686D0FFAA92124FF8D5E32CE447C08D
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/3-b_ziwdLcS8aItfcebWRkegPu8.roa
Signing time: Tue 20 Feb 2024 12:39:00 +0000
ROA not before: Tue 20 Feb 2024 12:39:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44252
IP address blocks: 37.153.174.0/24 maxlen: 24
89.46.127.0/24 maxlen: 24
89.47.40.0/24 maxlen: 24
89.47.41.0/24 maxlen: 24
92.60.224.0/24 maxlen: 24
92.60.225.0/24 maxlen: 24
92.60.226.0/24 maxlen: 24
92.60.227.0/24 maxlen: 24
92.60.228.0/24 maxlen: 24
92.60.229.0/24 maxlen: 24
92.60.230.0/24 maxlen: 24
92.60.231.0/24 maxlen: 24
92.60.232.0/24 maxlen: 24
92.60.233.0/24 maxlen: 24
92.60.235.0/24 maxlen: 24
92.60.237.0/24 maxlen: 24
92.60.238.0/24 maxlen: 24
92.60.239.0/24 maxlen: 24
93.113.250.0/24 maxlen: 24
94.228.227.0/24 maxlen: 24
94.228.229.0/24 maxlen: 24
94.228.230.0/24 maxlen: 24
94.228.231.0/24 maxlen: 24
94.228.233.0/24 maxlen: 24
94.228.234.0/24 maxlen: 24
94.228.237.0/24 maxlen: 24
94.228.238.0/24 maxlen: 24
176.67.192.0/24 maxlen: 24
176.67.193.0/24 maxlen: 24
176.67.194.0/24 maxlen: 24
176.67.196.0/24 maxlen: 24
176.67.198.0/24 maxlen: 24
176.67.200.0/23 maxlen: 24
176.67.202.0/23 maxlen: 24
176.67.204.0/24 maxlen: 24
176.67.205.0/24 maxlen: 24
176.67.206.0/23 maxlen: 23
176.67.208.0/24 maxlen: 24
176.67.210.0/24 maxlen: 24
176.67.211.0/24 maxlen: 24
176.67.212.0/24 maxlen: 24
176.67.214.0/24 maxlen: 24
176.67.217.0/24 maxlen: 24
176.67.218.0/24 maxlen: 24
176.67.219.0/24 maxlen: 24
176.67.220.0/24 maxlen: 24
176.67.221.0/24 maxlen: 24
176.67.223.0/24 maxlen: 24
178.17.19.0/24 maxlen: 24
178.17.22.0/24 maxlen: 24
178.17.23.0/24 maxlen: 24
178.17.24.0/24 maxlen: 24
178.17.26.0/24 maxlen: 24
178.17.27.0/24 maxlen: 24
178.17.28.0/24 maxlen: 24
178.17.30.0/24 maxlen: 24
185.27.128.0/24 maxlen: 24
185.27.131.0/24 maxlen: 24
185.36.255.0/24 maxlen: 24
188.215.30.0/24 maxlen: 24
188.240.200.0/24 maxlen: 24
188.240.201.0/24 maxlen: 24
213.196.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Apr 2024 11:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c6:86:d0:ff:aa:92:12:4f:f8:d5:e3:2c:e4:47:c0:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Feb 20 12:39:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dfe6ffce2c1d2dc4bc688b5f71e6d64647a03eef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b3:69:12:e1:86:25:27:a9:ea:4e:83:35:0a:
a8:ed:c2:21:c0:c2:84:7c:f1:a8:c1:f3:39:7a:b3:
a9:91:48:ca:6c:bd:15:c6:fd:3d:ab:d0:74:1e:25:
24:42:78:3d:66:30:94:75:4f:d8:71:eb:62:b3:19:
70:a6:33:72:af:26:eb:9c:05:bb:0d:de:b4:41:3d:
06:3e:3f:a7:79:aa:07:53:c2:83:b8:5f:df:88:05:
f2:4f:c8:89:78:8a:d9:17:80:8d:c9:6e:3f:a6:59:
a1:c8:2a:ea:35:e8:87:c7:1c:c7:c1:ed:8e:32:b6:
f7:9c:b8:44:81:1f:48:2c:7d:3d:2b:4a:00:40:de:
04:6d:ec:a6:4c:75:27:2d:7c:af:f3:cd:a6:06:9d:
7f:18:e5:c3:ca:0a:c1:ac:f0:82:02:ee:c6:13:f7:
75:4d:61:d1:cb:97:6b:6d:43:23:c1:88:22:28:18:
ad:36:a7:30:45:7f:0d:d9:95:83:06:09:8a:4d:21:
27:a0:ad:c9:4d:93:30:f6:37:f7:2c:f7:93:26:71:
ab:e9:91:7f:51:d7:a7:f0:ce:6b:1a:18:8e:97:a4:
66:85:b7:40:29:bc:72:2b:f9:7d:55:04:f2:3d:1a:
e4:72:e9:30:51:ea:27:ef:53:75:af:9b:3c:4f:58:
87:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:E6:FF:CE:2C:1D:2D:C4:BC:68:8B:5F:71:E6:D6:46:47:A0:3E:EF
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/3-b_ziwdLcS8aItfcebWRkegPu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.174.0/24
89.46.127.0/24
89.47.40.0/23
92.60.224.0-92.60.233.255
92.60.235.0/24
92.60.237.0-92.60.239.255
93.113.250.0/24
94.228.227.0/24
94.228.229.0-94.228.231.255
94.228.233.0-94.228.234.255
94.228.237.0-94.228.238.255
176.67.192.0-176.67.194.255
176.67.196.0/24
176.67.198.0/24
176.67.200.0-176.67.208.255
176.67.210.0-176.67.212.255
176.67.214.0/24
176.67.217.0-176.67.221.255
176.67.223.0/24
178.17.19.0/24
178.17.22.0-178.17.24.255
178.17.26.0-178.17.28.255
178.17.30.0/24
185.27.128.0/24
185.27.131.0/24
185.36.255.0/24
188.215.30.0/24
188.240.200.0/23
213.196.97.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:df:2e:bc:39:b4:22:64:a7:0b:96:57:6d:cb:ed:c8:53:25:
84:dd:a6:16:14:05:de:b8:70:33:fd:ce:ed:7a:9b:fd:db:1f:
93:ee:42:82:b6:70:77:e3:dc:7e:e9:e1:d7:f5:a6:2d:b7:b0:
29:a1:95:58:58:42:94:ef:2e:d0:55:d1:52:cd:a3:5c:7a:05:
88:a4:4b:00:9a:67:a9:26:4b:4d:91:63:ab:e0:f1:55:74:d9:
5b:73:72:cd:63:bd:27:2b:26:32:d3:14:e2:e5:dc:e9:17:93:
8e:04:1f:a2:0b:7c:15:b0:bb:ef:b3:fe:62:ab:92:85:c6:89:
d0:86:a0:d9:1f:61:07:00:c5:65:a5:02:26:44:ee:f7:8d:54:
c8:4b:7b:c6:1b:d7:0e:b6:ec:24:e2:3d:42:a4:d5:7b:f5:1a:
07:06:28:31:2d:5b:f1:ea:b0:15:b3:01:c2:2f:c9:ef:2c:99:
2c:d4:46:1a:f3:49:ad:78:2f:93:3a:ed:f9:20:8f:fa:1a:b6:
48:d9:ea:8b:c3:42:69:2f:6b:ff:7b:cd:7e:98:c6:54:c3:f1:
2c:ec:a8:f5:03:cd:90:7c:9e:61:e9:3d:2a:1d:9c:10:38:5d:
f6:09:04:93:bf:f5:af:f8:8f:d7:63:23:06:79:8a:07:fe:77:
10:d0:a5:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:32 2024 by rpki-client on console-fra.rpki-client.org